Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa
File: 3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa (raw, json)
Hash identifier: LULC79bR5urCWK9LJ8T/IwclWUcY8RdpHGD/jOzeh8c=
Subject key identifier: 69:0D:D8:11:0B:6A:8F:1B:E1:6E:B8:97:6C:6F:E2:D2:40:C1:DC:ED
Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B
Certificate serial: 71EB4E8A99754422D30D098D810D5360B7CB9EED
Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa
Signing time: Mon 11 Nov 2024 08:00:01 +0000
ROA not before: Mon 11 Nov 2024 07:55:01 +0000
ROA not after: Mon 10 Nov 2025 08:00:01 +0000
asID: 38750
IP address blocks: 202.179.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:eb:4e:8a:99:75:44:22:d3:0d:09:8d:81:0d:53:60:b7:cb:9e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B
Validity
Not Before: Nov 11 07:55:01 2024 GMT
Not After : Nov 10 08:00:01 2025 GMT
Subject: CN=690DD8110B6A8F1BE16EB8976C6FE2D240C1DCED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:05:11:44:dc:86:32:84:9a:b5:70:7e:c5:e9:
bd:e1:3f:a7:89:b1:6b:24:37:fa:75:09:ec:bc:9a:
a4:69:11:3b:20:54:46:ab:99:31:47:e2:b0:4e:2c:
f7:bf:20:94:fc:5f:18:a0:64:f4:e7:22:d0:5d:44:
24:c1:6e:d7:36:94:05:6a:44:a0:03:82:9b:20:43:
e9:5e:7e:cd:38:ed:30:42:bd:24:14:4b:c7:51:ba:
ed:1c:d2:08:a9:89:f1:6c:96:47:f0:23:82:db:b8:
ef:d9:d6:b1:58:0f:12:79:7d:ca:77:f6:99:c5:67:
90:25:61:b3:de:b3:49:db:b5:5e:ca:99:1c:3e:91:
e2:01:cf:a6:dd:d9:e4:2c:41:06:42:06:5c:7d:a6:
08:86:6b:ed:a0:ff:ee:b2:80:df:eb:80:47:96:74:
30:ad:5c:ce:1a:06:cd:93:6d:32:58:44:74:51:62:
79:1a:e8:06:9d:3d:5c:19:a1:36:16:12:4c:67:81:
47:e3:d8:e4:e3:c5:89:7e:cb:ce:2d:02:15:43:ac:
bf:c1:8e:11:7d:3e:6f:c0:da:a7:f8:a8:49:c4:cf:
82:09:00:5c:df:89:74:0f:15:24:89:f3:ca:a7:eb:
d6:a7:ab:77:3f:68:fa:90:41:f3:37:a3:03:ef:f8:
20:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0D:D8:11:0B:6A:8F:1B:E1:6E:B8:97:6C:6F:E2:D2:40:C1:DC:ED
X509v3 Authority Key Identifier:
keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.179.185.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:25:de:73:26:05:71:0f:bb:70:50:63:c1:40:90:da:02:5d:
35:f2:7a:ed:59:39:49:6f:27:4a:f8:b9:13:1f:cb:22:29:12:
0d:65:cd:ea:a6:97:61:41:2c:8d:e3:f1:d5:2b:0d:95:74:31:
7b:40:da:73:cc:4f:40:90:30:8c:cf:ed:70:c2:ad:f0:06:98:
d5:77:7c:25:bd:a6:cb:9c:3b:db:f2:ea:eb:91:b1:92:af:50:
5d:17:b2:fa:49:c3:a3:35:99:66:74:47:53:51:f8:70:87:0e:
f9:c6:97:c0:fc:55:26:10:ae:ec:7c:d0:76:6f:85:54:23:be:
97:d2:e8:46:17:19:ee:f4:9e:cc:ac:b7:68:af:5d:24:c4:ae:
c2:13:39:c9:d1:62:48:f9:fb:b4:7e:51:de:a3:09:e0:ec:72:
16:32:d1:d5:9e:68:50:fd:6d:05:a2:fe:57:46:f5:63:00:d9:
ba:fb:57:cb:d1:13:ab:36:af:08:7c:eb:09:88:61:8b:59:0f:
93:b9:88:d7:96:d8:c5:b4:2d:c6:fc:c5:0a:2f:d5:15:c8:96:
ef:e7:af:47:68:7a:c4:16:c6:a9:46:30:cb:b6:11:14:08:53:
39:03:0f:61:de:d0:64:41:41:53:17:8c:8a:52:07:f5:4e:d4:
9d:7c:ac:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:26:45 2025 by rpki-client